From: Herbert Poetzl (herbert_at_13thfloor.at)
Date: Wed 20 Apr 2005 - 00:29:27 BST
On Tue, Apr 19, 2005 at 11:06:56PM +0200, Arjen wrote:
> Playing around with my vservers i noticed this, i can ssh from my root
> server to my vservers, but from my vservers i can't ssh to another vserver,
> to the rootserver or to the 'outside'. Is this common behavior? If not any
> hints on how to get around this? I can imagine it has something to do with
> all network interfaces having the same macaddress on host and vservers, but
> was hoping there was a workaround. For now i'm stuck with 'Host verification
> failed', not handy when having port 22 on my nat-router forwarded to a
> Oh, btw, when I do it as root it works! Now I really don't get it.
sounds like an userspace/configuration issue to me ...
did you check the logs on the server side? maybe some
permissions are not as expected ... does ssh or any
shell work as user (inside the vserver)?
> Some info:
> Linux muscles 220.127.116.11-grsec-vs1.9.5 #2 Sun Apr 17 04:02:20 CEST 2005 x86_64
> AMD Athlon(tm) 64 Processor 3400+ AuthenticAMD GNU/Linux
> util-vserver-0.30.204 (205 won't compile on my Gentoo box)
(try 0.30.206 ;)
> arjen_at_germ ~ $ ssh -v muscles (as root this works!)
> OpenSSH_3.9p1, OpenSSL 0.9.7e 25 Oct 2004
> debug1: Reading configuration data /etc/ssh/ssh_config
> debug1: Connecting to muscles [192.168.0.6] port 22.
> debug1: Connection established.
> debug1: identity file /home/arjen/.ssh/identity type -1
> debug1: identity file /home/arjen/.ssh/id_rsa type -1
> debug1: identity file /home/arjen/.ssh/id_dsa type -1
> debug1: Remote protocol version 2.0, remote software version OpenSSH_4.0
> debug1: match: OpenSSH_4.0 pat OpenSSH*
> debug1: Enabling compatibility mode for protocol 2.0
> debug1: Local version string SSH-2.0-OpenSSH_3.9p1
> debug1: SSH2_MSG_KEXINIT sent
> debug1: SSH2_MSG_KEXINIT received
> debug1: kex: server->client aes128-cbc hmac-md5 none
> debug1: kex: client->server aes128-cbc hmac-md5 none
> debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
> debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
> debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
> debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
> Host key verification failed.
> Vserver mailing list
Vserver mailing list